search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2003-03-21 2002-07-19 2003-04-15 VU#229867 HP Tru64 UNIX "su" command vulnerable to buffer overflow
2006-04-17 2006-04-13 2006-05-17 VU#179014 Mozilla CSS integer overflow vulnerability
2004-05-10 2004-01-26 2004-05-10 VU#779614 Gaim contains an integer overflow vulnerability when parsing DirectIM packets
2002-02-27 2002-02-06 2002-02-27 VU#698467 Oracle 9iAS default configuration allows access to "globals.jsa" file
2001-08-27 2001-07-11 2001-08-27 VU#557136 Cayman gateways ship with null administrative and user level passwords
2004-06-09 2004-05-05 2004-07-16 VU#722414 Perl vulnerable to buffer overflow in win32_stat()
2004-04-05 2003-11-25 2005-06-17 VU#323070 Outlook Express MHTML protocol handler does not properly validate source of alternate content
2006-07-11 2006-07-10 2006-07-17 VU#294036 Juniper JUNOS IPv6 denial-of-service vulnerability
2004-08-13 2004-08-03 2004-08-13 VU#749870 Juniper Networks NetScreen firewall contains a DoS vulnerability in the SSHv1 service
2004-02-25 2004-02-24 2004-03-15 VU#460350 Apple Quicktime/Darwin Streaming Server fails to properly parse DESCRIBE requests
2006-07-11 2006-07-11 2006-07-13 VU#580036 Microsoft Office fails to properly handle malformed strings
2004-07-14 2004-07-13 2004-07-14 VU#647436 Microsoft Windows contains a buffer overflow in the POSIX subsystem
2005-05-06 2005-05-03 2005-05-16 VU#356070 Apple Terminal fails to properly sanitize input for "x-man-page" URI
2003-09-19 1999-04-03 2003-09-19 VU#41870 Sun Solstice AdminSuite ships with insecure default configuration
2007-08-14 2007-08-14 2007-08-14 VU#640136 Microsoft GDI Windows Metafile AttemptWrite integer overflow

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis